| Title | Cudy Cudy WR1200EA Router 2.3.7 Password Hash With Insufficient Computational Effort |
|---|
| Description | The vulnerability was discovered by analyzing the firmware (WR1200EA-R62-2.3.7-20250113-121810-flash.bin). The /etc/shadow file was extracted, and the root user's MD5-crypt hash was cracked using John the Ripper, revealing the default password "admin." This weak credential allows attackers to log in to the router's administrative interface or other services without additional exploits. |
|---|
| Source | ⚠️ https://github.com/ZZ2266/.github.io/tree/main/Cudy |
|---|
| User | n0ps1ed (UID 88889) |
|---|
| Submission | 08/16/2025 14:32 (10 months ago) |
|---|
| Moderation | 08/28/2025 16:42 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 321761 [Cudy WR1200EA 2.3.7-20250113-121810 /etc/shadow default password] |
|---|
| Points | 19 |
|---|